A few days after the launch of the new social network GETTR, hackers have already managed to exploit its buggy API services to obtain the names, email addresses and location of thousands of users. The Motherboard he says:
Hackers managed to obtain email addresses and other data of 90.000+ GETTR users. On Tuesday, a hacking forum user posted a database data που ισχυρίζεται ότι είναι χρήστες του GETTR, της νέας πλατφόρμας κοινωνικών μέσων που κυκλοφόρησε την περασμένη εβδομάδα από τον πρώην εκπρόσωπο του πρώην προέδρου Trumo, τον Jason Miller.
(To mention that immediately after the announcement of the new social network, we had another breach with deface of the website)
The data seen by Motherboard includes email addresses post officey, usernames, status and location. One of the people whose email is in the database confirmed to Motherboard that he has indeed signed up for GETTR.
Motherboard researchers also verified the database while trying to create a new one account with three email addresses already in the leaked database. Then the social network displayed the message: “Email is in use”, indicating that someone has already signed up.
It is not clear if the database contains the usernames and email addresses of all users of the new social network.
Alon Gal, co-founder and CTO of security company Hudson Rock, was the one who found the post on the database hacking forum.
"When hackers are able to extract sensitive information due to neglected API applications, the consequence is tantamount to data breach and should be dealt with accordingly by the company and considered by regulators," he told Motherboard.